EdgeSwitch-DOT1X-ADVANCED-FEATURES-MIB

File: EdgeSwitch-DOT1X-ADVANCED-FEATURES-MIB.mib (35776 bytes)

Imported modules

SNMPv2-SMI IEEE8021-PAE-MIB SNMPv2-TC
RFC1213-MIB EdgeSwitch-REF-MIB

Imported symbols

MODULE-IDENTITY OBJECT-TYPE NOTIFICATION-TYPE
Unsigned32 TimeTicks dot1xPaePortNumber
TEXTUAL-CONVENTION RowStatus MacAddress
DateAndTime DisplayString fastPath

Defined Types

Dot1xPortControlMode  
The control values of the Authenticator PAE controlled Port.
TEXTUAL-CONVENTION    
  INTEGER forceUnauthorized(1), auto(2), forceAuthorized(3), macBased(4)  

Dot1xSessionTerminationAction  
The action to be taken on session termination .
TEXTUAL-CONVENTION    
  INTEGER default(1), reauthenticate(2)  

AgentDot1xPortConfigEntry  
SEQUENCE    
  agentDot1xPortControlMode Dot1xPortControlMode
  agentDot1xGuestVlanId Unsigned32
  agentDot1xGuestVlanPeriod Unsigned32
  agentDot1xUnauthenticatedVlan Unsigned32
  agentDot1xMaxUsers Unsigned32
  agentDot1xPortVlanAssigned Unsigned32
  agentDot1xPortVlanAssignedReason INTEGER
  agentDot1xPortSessionTimeout Unsigned32
  agentDot1xPortTerminationAction Dot1xSessionTerminationAction
  agentDot1xPortMABenabled INTEGER
  agentDot1xPortMABenabledOperational INTEGER

AgentDot1xClientConfigEntry  
SEQUENCE    
  agentDot1xClientMacAddress MacAddress
  agentDot1xLogicalPort Unsigned32
  agentDot1xInterface Unsigned32
  agentDot1xClientAuthPAEstate INTEGER
  agentDot1xClientBackendState INTEGER
  agentDot1xClientUserName DisplayString
  agentDot1xClientSessionTime Unsigned32
  agentDot1xClientFilterID DisplayString
  agentDot1xClientVlanAssigned Unsigned32
  agentDot1xClientVlanAssignedReason INTEGER
  agentDot1xClientSessionTimeout Unsigned32
  agentDot1xClientTerminationAction Dot1xSessionTerminationAction

AgentDot1xPortAuthHistoryResultEntry  
SEQUENCE    
  agentDot1xAuthHistoryResultIfaceIndex Unsigned32
  agentDot1xAuthHistoryResultIndex Unsigned32
  agentDot1xAuthHistoryResultTimeStamp DateAndTime
  agentDot1xAuthHistoryResultAge TimeTicks
  agentDot1xAuthHistoryResultMacAddress MacAddress
  agentDot1xAuthHistoryResultVlanId Unsigned32
  agentDot1xAuthHistoryResultAuthStatus INTEGER
  agentDot1xAuthHistoryResultAccessStatus INTEGER
  agentDot1xAuthHistoryResultFilterID DisplayString
  agentDot1xAuthHistoryResultVlanAssigned Unsigned32
  agentDot1xAuthHistoryResultVlanAssignedType INTEGER
  agentDot1xAuthHistoryResultReasonCode INTEGER

AgentDot1xPortAuthHistoryResultClearEntry  
SEQUENCE    
  agentDot1xAuthHistoryResultIfIndex Unsigned32
  agentDot1xPortAuthHistoryResultsClear INTEGER

Defined Values

fastPathdot1xAdvanced 1.3.6.1.4.1.4413.1.1.36
The Ubiquiti Private MIB for FastPath Dot1x Advanced Features
MODULE-IDENTITY    

agentDot1xEnhancementConfigGroup 1.3.6.1.4.1.4413.1.1.36.1
OBJECT IDENTIFIER    

agentDot1xRadiusVlanAssignment 1.3.6.1.4.1.4413.1.1.36.1.1
Enable/Disable dot1x Vlan Assignment Support on the switch.
OBJECT-TYPE    
  INTEGER enable(1), disable(2)  

agentDot1xDynamicVlanCreationMode 1.3.6.1.4.1.4413.1.1.36.1.2
Enable/Disable dot1x dynamic vlan creation Support on the switch.
OBJECT-TYPE    
  INTEGER enable(1), disable(2)  

agentDot1xEapolFloodMode 1.3.6.1.4.1.4413.1.1.36.1.3
Enable/Disable dot1x eapol flooding mode on the switch.
OBJECT-TYPE    
  INTEGER enable(1), disable(2)  

agentDot1xPortConfigGroup 1.3.6.1.4.1.4413.1.1.36.2
OBJECT IDENTIFIER    

agentDot1xPortConfigTable 1.3.6.1.4.1.4413.1.1.36.2.1
A table for dot1x enhanced Port details and associated functionality.
OBJECT-TYPE    
  SEQUENCE OF  
    AgentDot1xPortConfigEntry

agentDot1xPortConfigEntry 1.3.6.1.4.1.4413.1.1.36.2.1.1
Represents entry for port config table.
OBJECT-TYPE    
  AgentDot1xPortConfigEntry  

agentDot1xPortControlMode 1.3.6.1.4.1.4413.1.1.36.2.1.1.1
Dot1x port control mode of this port.The Port control mode . The port control mode for this interface can take the following values , force-unauthorized - the port is in unauthorized mode, auto-Port based mode. If a client authenticates suscessfully, then the interface is authorized . Otherwise, the port is in unauthorized mode. If more than one clients are attached to the port , then only one client needs to authenticate to allow other clients access. force-authorized - The port is placed in authorized mode macBased - If more than one client is attached to the port, then each client needs to authenticate separately. This object depcreates dot1xAuthAuthControlledPortControl object in IEEE8021-PAE-MIB
OBJECT-TYPE    
  Dot1xPortControlMode  

agentDot1xGuestVlanId 1.3.6.1.4.1.4413.1.1.36.2.1.1.2
Specifies the Guest Vlan of the port. A port will be moved to its Guest Vlan if no client sucessfully authenticates on that port for the Guest Vlan Period. A value of zero indicates no Guest Vlan is configured for the interface.
OBJECT-TYPE    
  Unsigned32  

agentDot1xGuestVlanPeriod 1.3.6.1.4.1.4413.1.1.36.2.1.1.3
The value, in seconds, of the guestVlanPeriod constant currently in use for Guest Vlan Assignment for the port .
OBJECT-TYPE    
  Unsigned32 1..300  

agentDot1xUnauthenticatedVlan 1.3.6.1.4.1.4413.1.1.36.2.1.1.4
Specifies the Unauthenticated Vlan of the port. A port will be moved to its unauthenticated Vlan if the client authenticates unsucessfully on that port . A value of zero indicates no Unauthenticated Vlan is configured for the port.
OBJECT-TYPE    
  Unsigned32  

agentDot1xMaxUsers 1.3.6.1.4.1.4413.1.1.36.2.1.1.5
Specifies the maximum users or clients that can authenticate on this port when the port control mode is macBased.
OBJECT-TYPE    
  Unsigned32  

agentDot1xPortVlanAssigned 1.3.6.1.4.1.4413.1.1.36.2.1.1.6
Specifies the vlan the port is assigned to by Dot1x . Only relevant if the port control mode of the port is auto.
OBJECT-TYPE    
  Unsigned32  

agentDot1xPortVlanAssignedReason 1.3.6.1.4.1.4413.1.1.36.2.1.1.7
Reason the port is assigned to the vlan specified by agentDot1xPortVlanAssigned . Only relevant if the port control mode of the port is auto.
OBJECT-TYPE    
  INTEGER default(1), radius(2), unauthenticatedVlan(3), guestVlan(4), voiceVlan(5), monitorVlan(6), notAssigned(7)  

agentDot1xPortSessionTimeout 1.3.6.1.4.1.4413.1.1.36.2.1.1.8
Specifies the session timeout value assigned by the Radius server for this port . Only relevant if the port control mode of the port is auto.
OBJECT-TYPE    
  Unsigned32  

agentDot1xPortTerminationAction 1.3.6.1.4.1.4413.1.1.36.2.1.1.9
Specifies the session termination action assigned by the Radius Server .This is the action taken when the session times out . Only relevant if the port control mode of the port is auto.
OBJECT-TYPE    
  Dot1xSessionTerminationAction  

agentDot1xPortMABenabled 1.3.6.1.4.1.4413.1.1.36.2.1.1.10
Specifies if Mac-based bypass authentication is configured for the port.
OBJECT-TYPE    
  INTEGER enable(1), disable(2)  

agentDot1xPortMABenabledOperational 1.3.6.1.4.1.4413.1.1.36.2.1.1.11
Displays the operational value of the Mac-based authentication bypass mode (MAB) on the port.
OBJECT-TYPE    
  INTEGER enable(1), disable(2)  

agentDot1xClientConfigGroup 1.3.6.1.4.1.4413.1.1.36.3
OBJECT IDENTIFIER    

agentDot1xClientConfigTable 1.3.6.1.4.1.4413.1.1.36.3.1
A table for dot1x Client details and associated functionality.
OBJECT-TYPE    
  SEQUENCE OF  
    AgentDot1xClientConfigEntry

agentDot1xClientConfigEntry 1.3.6.1.4.1.4413.1.1.36.3.1.1
Represents entry for port config table.
OBJECT-TYPE    
  AgentDot1xClientConfigEntry  

agentDot1xClientMacAddress 1.3.6.1.4.1.4413.1.1.36.3.1.1.1
Specifies the client MAC address of the client.
OBJECT-TYPE    
  MacAddress  

agentDot1xLogicalPort 1.3.6.1.4.1.4413.1.1.36.3.1.1.2
Specifies the client MAC address of the client .
OBJECT-TYPE    
  Unsigned32  

agentDot1xInterface 1.3.6.1.4.1.4413.1.1.36.3.1.1.3
Specifies the physical interface to which the client is attached .
OBJECT-TYPE    
  Unsigned32  

agentDot1xClientAuthPAEstate 1.3.6.1.4.1.4413.1.1.36.3.1.1.4
The current value of the Authenticator PAE state machine for the client.
OBJECT-TYPE    
  INTEGER initialize(1), disconnected(2), connecting(3), authenticating(4), authenticated(5), aborting(6), held(7), forceAuth(8), forceUnauth(9)  

agentDot1xClientBackendState 1.3.6.1.4.1.4413.1.1.36.3.1.1.5
The current state of the Backend Authentication state machine.
OBJECT-TYPE    
  INTEGER request(1), response(2), success(3), fail(4), timeout(5), idle(6), initialize(7)  

agentDot1xClientUserName 1.3.6.1.4.1.4413.1.1.36.3.1.1.6
Specifies the username with which the client is authenticated to the Radius server . This value is only valid when the client is in authenticated state.
OBJECT-TYPE    
  DisplayString  

agentDot1xClientSessionTime 1.3.6.1.4.1.4413.1.1.36.3.1.1.7
Specifies the time elapsed in seconds since the client was authenticated in this session. This value is only valid when the client is in authenticated state.
OBJECT-TYPE    
  Unsigned32  

agentDot1xClientFilterID 1.3.6.1.4.1.4413.1.1.36.3.1.1.8
Specifies the Filter ID or Diffserv Policy name to be applied to the session . This vlaue is populated only if it has been assigned by the RADIUS server. This value is only valid when the client is in authenticated state.
OBJECT-TYPE    
  DisplayString  

agentDot1xClientVlanAssigned 1.3.6.1.4.1.4413.1.1.36.3.1.1.9
Specifies the vlan the client is associated with by Dot1x . This value is only valid when the client is in authenticated state.
OBJECT-TYPE    
  Unsigned32  

agentDot1xClientVlanAssignedReason 1.3.6.1.4.1.4413.1.1.36.3.1.1.10
Reason the client is associated to the vlan specified by agentDot1xClientVlanAssigned . This value is only valid when the client is in authenticated state.
OBJECT-TYPE    
  INTEGER default(1), radius(2), unauthenticatedVlan(3), monitorVlan(6), invalid(7)  

agentDot1xClientSessionTimeout 1.3.6.1.4.1.4413.1.1.36.3.1.1.11
Specifies the session time remaining for the client if assigned by the Radius server . A value of 0 indicates that no session timeout was assigned by the RADIUS server. This value is only valid when the client is in authenticated state.
OBJECT-TYPE    
  Unsigned32  

agentDot1xClientTerminationAction 1.3.6.1.4.1.4413.1.1.36.3.1.1.12
Specifies the session termination action assigned by the Radius Server . This is the action taken when the session times out . This value is only valid when the client is in authenticated state.
OBJECT-TYPE    
  Dot1xSessionTerminationAction  

agentDot1xMonitorModeConfigGroup 1.3.6.1.4.1.4413.1.1.36.4
OBJECT IDENTIFIER    

agentDot1xMonitorModeEnabled 1.3.6.1.4.1.4413.1.1.36.4.1
Enable/Disable Dot1x Monitor mode Support on the switch.
OBJECT-TYPE    
  INTEGER enable(1), disable(2)  

agentDot1xMonitorModeClients 1.3.6.1.4.1.4413.1.1.36.4.2
Retrieves the number of clients that got authenticated by Monitor mode globally.
OBJECT-TYPE    
  Unsigned32  

agentDot1xNonMonitorModeClients 1.3.6.1.4.1.4413.1.1.36.4.3
Retrieves the number of clients that are granted access by Dot1x with no monitor mode enabled.
OBJECT-TYPE    
  Unsigned32  

agentDot1xAuthHistoryResultsGroup 1.3.6.1.4.1.4413.1.1.36.5
OBJECT IDENTIFIER    

agentDot1xPortAuthHistoryResultTable 1.3.6.1.4.1.4413.1.1.36.5.1
A table to display the dot1x monitor mode results.
OBJECT-TYPE    
  SEQUENCE OF  
    AgentDot1xPortAuthHistoryResultEntry

agentDot1xPortAuthHistoryResultEntry 1.3.6.1.4.1.4413.1.1.36.5.1.1
Represents Dot1x Authentication results for a Dot1x Authentication History table.
OBJECT-TYPE    
  AgentDot1xPortAuthHistoryResultEntry  

agentDot1xAuthHistoryResultIfaceIndex 1.3.6.1.4.1.4413.1.1.36.5.1.1.1
This object represents the physical Bridge Port on which dot1x Auth event might be received.
OBJECT-TYPE    
  Unsigned32  

agentDot1xAuthHistoryResultIndex 1.3.6.1.4.1.4413.1.1.36.5.1.1.2
Reference to the Dot1x Authentication history table maintained.
OBJECT-TYPE    
  Unsigned32  

agentDot1xAuthHistoryResultTimeStamp 1.3.6.1.4.1.4413.1.1.36.5.1.1.3
Specifies the exact time of Dot1x Authentication event information occurred maintained in the history table.
OBJECT-TYPE    
  DateAndTime  

agentDot1xAuthHistoryResultAge 1.3.6.1.4.1.4413.1.1.36.5.1.1.4
Time since the authentication entry was added to the history table. It is displayed in days, hours, minutes, and seconds.
OBJECT-TYPE    
  TimeTicks  

agentDot1xAuthHistoryResultMacAddress 1.3.6.1.4.1.4413.1.1.36.5.1.1.5
Specifies the client MAC Address maintained in the Dot1x Authentication history table.
OBJECT-TYPE    
  MacAddress  

agentDot1xAuthHistoryResultVlanId 1.3.6.1.4.1.4413.1.1.36.5.1.1.6
Specifies the VLANID maintained in the history table. It is the VLANID which is failed to associate to the port during authentication process. The VLANID is identified distinctly by the Reason code for the respective entry. Valid only when the reason code is set to 13 (VLAN assignment failure). In all the other cases, VLANID is set to 0.
OBJECT-TYPE    
  Unsigned32  

agentDot1xAuthHistoryResultAuthStatus 1.3.6.1.4.1.4413.1.1.36.5.1.1.7
Specifies the Dot1x Authentication status (Success or Failure) for the Dot1x Authentication event takes place.
OBJECT-TYPE    
  INTEGER success(1), failure(2)  

agentDot1xAuthHistoryResultAccessStatus 1.3.6.1.4.1.4413.1.1.36.5.1.1.8
Authentication access status indicates the exact status of the dot1x client. Granted means the client is allowed access to the network using dot1x or monitor mode. Denied means the client is not allowed access to the network.
OBJECT-TYPE    
  INTEGER granted(1), denied(2)  

agentDot1xAuthHistoryResultFilterID 1.3.6.1.4.1.4413.1.1.36.5.1.1.9
Specifies the Filter ID or Diffserv Policy name assigned by the RADIUS server. This value is only valid when the client is in authenticated state.
OBJECT-TYPE    
  DisplayString  

agentDot1xAuthHistoryResultVlanAssigned 1.3.6.1.4.1.4413.1.1.36.5.1.1.10
Specifies the VLANID maintained in the history table (It is the VLANID Assigned to a Port or Client authenticate).
OBJECT-TYPE    
  Unsigned32  

agentDot1xAuthHistoryResultVlanAssignedType 1.3.6.1.4.1.4413.1.1.36.5.1.1.11
Specifies the VLAN Assigned Reason maintained in the history table.
OBJECT-TYPE    
  INTEGER default(1), radius(2), unauthenticatedVlan(3), guestVlan(4), voiceVlan(5), monitorVlan(6), notAssigned(7)  

agentDot1xAuthHistoryResultReasonCode 1.3.6.1.4.1.4413.1.1.36.5.1.1.12
Specifies the Dot1x authentication reason refered by the result index on a port.
OBJECT-TYPE    
  INTEGER supplicant-timeout(1), eapol-timeout(2), radius-request-timeout(3), radius-auth-failure(4), radius-auth-comm-failure(5), radius-challenge-process-invalid-nas-port(6), radius-challenge-process-wrong-eap-msg(7), radius-request-send-msg-error(8), radius-accept-process-invalid-nas-port(9), radius-accept-process-wrong-eap-msg(10), radius-accept-filter-assignment-failure(11), radius-accept-diffserv-not-present(12), radius-accept-vlan-assignment-failure(13), vlan-assignment-feature-not-enabled(14), radius-success(15), local-auth-user-not-found(16), local-auth-user-no-access(17), local-auth-md5-validation-failure(18), local-auth-invalid-eap-type(19), local-failure(20), local-success(21), radius-invalid-radius-status(22), guest-vlan-timer-expiry(23), undefined-auth-method(24), reject-auth-method(25), invalid-auth-method(26), auth-method-not-configured(27), unauth-vlan-not-created(28), guest-vlan-not-created(29), radius-accept-invalid-vlan-failure(30)  

agentDot1xAuthHistoryResultsClear 1.3.6.1.4.1.4413.1.1.36.5.2
When set to enable(1), all Dot1x Authentication History information will be reset.
OBJECT-TYPE    
  INTEGER enable(1), disable(2)  

agentDot1xPortAuthHistoryResultClearTable 1.3.6.1.4.1.4413.1.1.36.5.3
A table to clear the dot1x monitor mode results per interface.
OBJECT-TYPE    
  SEQUENCE OF  
    AgentDot1xPortAuthHistoryResultClearEntry

agentDot1xPortAuthHistoryResultClearEntry 1.3.6.1.4.1.4413.1.1.36.5.3.1
Represents to clear the Dot1x Authentication results for a Dot1x Authentication History table.
OBJECT-TYPE    
  AgentDot1xPortAuthHistoryResultClearEntry  

agentDot1xAuthHistoryResultIfIndex 1.3.6.1.4.1.4413.1.1.36.5.3.1.1
This object represents the physical Bridge Port on which dot1x Auth event might be received.
OBJECT-TYPE    
  Unsigned32  

agentDot1xPortAuthHistoryResultsClear 1.3.6.1.4.1.4413.1.1.36.5.3.1.2
When set to enable(1), all Dot1x Authentication History information for the given port will be reset. The value is write-only. Attempt to read will return disable(2).
OBJECT-TYPE    
  INTEGER enable(1), disable(2)